From b2fd120336214f971005221b09552c4f7709efae Mon Sep 17 00:00:00 2001
From: Vincent De Smet <vincent.drl@gmail.com>
Date: Tue, 7 Jun 2016 23:14:10 +0800
Subject: [PATCH] Ensure /var/lib/rkt is owned by rkt group

Required to ensure that members of the `rkt` group can run rkt without `sudo`
---
 src/cloud-init/user-data | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/cloud-init/user-data b/src/cloud-init/user-data
index 686c84e..a6ac724 100644
--- a/src/cloud-init/user-data
+++ b/src/cloud-init/user-data
@@ -61,7 +61,7 @@ coreos:
         Type=oneshot
         RemainAfterExit=yes
         ExecStart=/bin/sh -c '[[ -d /data/var/lib/docker ]] || mkdir -p /data/var/lib/docker'
-        ExecStart=/bin/sh -c '[[ -d /data/var/lib/rkt ]] || mkdir -p /data/var/lib/rkt'
+        ExecStart=/bin/sh -c '[[ -d /data/var/lib/rkt ]] || mkdir -p /data/var/lib/rkt && /usr/bin/chgrp rkt /data/var/lib/rkt'
         ExecStart=/bin/sh -c '[[ -d /data/var/lib/etcd2 ]] || mkdir -p /data/var/lib/etcd2 && /usr/bin/chown etcd:etcd /data/var/lib/etcd2'
         ExecStart=/bin/sh -c '[[ -d /data/opt/bin ]] || mkdir -p /data/opt/bin'
     - name: var-lib-etcd2.mount